Количество 2
Количество 2
CVE-2021-25925
in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly when processed by the server. Therefore, an attacker can inject arbitrary JavaScript code inside the application, and possibly steal a user’s sensitive information.
GHSA-rmp7-f2vp-3rq4
Cross-site scripting in SiCKRAGE
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-25925 in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly when processed by the server. Therefore, an attacker can inject arbitrary JavaScript code inside the application, and possibly steal a user’s sensitive information. | CVSS3: 5.4 | 0% Низкий | почти 5 лет назад |
| GHSA-rmp7-f2vp-3rq4 Cross-site scripting in SiCKRAGE | CVSS3: 5.4 | 0% Низкий | почти 5 лет назад |
Уязвимостей на страницу